![]() ![]() While a final remediation cost is yet to be determined, the auditor’s office estimates it will be between $500,000 and $1 million over the next 18 months. ![]() Walder added the company will assist in developing a 60-day, six-month and 18-month remediation plan for reducing county IT vulnerabilities. 7, commissioners approved a $49,000 contract with Black Box to provide 260 man-hours of high level consulting support to the county. Vulnerabilities in the county treasurer, auditor, courts and engineer offices were immediately addressed, Walder said.Īt their meeting Dec. Specific risks are not being released to the public for security reasons, but the report found 426 critical vulnerabilities in the City of Chardon, and Bainbridge and Chester township infrastructures.ĭepartments under the hiring authority of county commissioners clocked 2,580 critical vulnerabilities, the report found. It identified critical, high and medium vulnerabilities throughout the county. Walder said a report with the results of the study were presented to commissioners and the ADP board Nov. The ADP department and Walder’s office jointly contracted in October with Black Box and Paranet Corp., two external IT vendors, for approximately $48,000 to perform a vulnerability study of the Geauga County governmental network, said Frank Antenucci, chief deputy administrator of the ADP department, in an email. “Remediation measures were instituted by (the Geauga County Automatic Data Processing Department of Information Technology), security levels were raised, forced password resets were enacted and additional security measures were initiated,” Walder said. 16-21, the Geauga County Engineer’s Office website experienced a series of “brute force attacks,” during which an attacker repeatedly attempted to crack a password by submitting hundreds to millions of passwords, hoping to eventually succeed at logging in to access private data. ![]() In an email, Walder said the county experienced two payroll re-routing spoof attempts using email in early November, but both were averted with established payroll protocols and procedures. “No data was lost, no money was lost, but that was the beginning of what we saw to be an attack on our infrastructure,” Walder told commissioners. 7 Geauga County Commissioners meeting, Walder said the attack showed up in emails to county employees - whose addresses were in Leadership Geauga’s contact list - prompting them to click a link and enter personal credentials, and rendering the county’s backend systems vulnerable to attack. The hack, which Geauga County Auditor Chuck Walder said followed on the heels of a phishing attack against nonprofit Leadership Geauga, soon struck county workstations, taking over a dozen offline on Sept. Various information technology infrastructure was hit by several cyber assaults since late summer, including an email phishing attack in early September that led to a hack of some county systems. Geauga County has spent months fighting off cyber attacks. ![]()
0 Comments
Leave a Reply. |